authvisage-sdk/dist/authVisageClient.js

authvisage client sdk

import { GoTrueClient } from "@supabase/auth-js";
import { OAuthStateHandler } from "./oauthStateHandler";
import { PKCEHandler } from "./pkceHandler";
/**
 * Main AuthVisage client for handling authentication
 */
export class AuthVisageClient {
    constructor(options) {
        const { goTrueUrl, platformUrl, projectId, backendUrl, redirectUrl } = options;
        this.authClient = new GoTrueClient({
            url: goTrueUrl,
            autoRefreshToken: false,
            detectSessionInUrl: false,
        });
        this.projectId = projectId;
        this.platformUrl = platformUrl;
        this.backendUrl = backendUrl;
        this.redirectUrl = redirectUrl;
        this._handleOAuthCallback().catch(console.error);
    }
    /**
     * Constructs the OAuth authorization URL
     */
    async _constructAuthUrl() {
        const state = OAuthStateHandler.generate();
        const { codeChallenge } = await PKCEHandler.generate();
        const url = new URL(this.platformUrl + "/authorize");
        url.searchParams.append("state", state);
        url.searchParams.append("projectId", this.projectId);
        url.searchParams.append("redirect_uri", this.redirectUrl);
        url.searchParams.append("code_challenge", codeChallenge);
        url.searchParams.append("code_challenge_method", "S256");
        return url.toString();
    }
    /**
     * Handles the OAuth callback and exchanges the authorization code for an access token
     */
    async _handleOAuthCallback() {
        const urlParams = new URLSearchParams(window.location.search);
        const code = urlParams.get("code");
        const returnedState = urlParams.get("state");
        if (!code || !returnedState)
            return;
        if (!OAuthStateHandler.validate(returnedState)) {
            throw new Error("State validation failed! Possible CSRF attack.");
        }
        const response = await fetch(`${this.backendUrl}/token`, {
            method: "POST",
            headers: { "Content-Type": "application/json" },
            credentials: "include",
            body: JSON.stringify({
                code,
                project_id: this.projectId,
                redirect_uri: this.redirectUrl,
            }),
        });
        if (!response.ok) {
            throw new Error(`Token exchange failed: ${response.statusText}`);
        }
        const data = (await response.json());
        if (!data.access_token) {
            throw new Error("Token response missing access_token");
        }
        if (data.refresh_token) {
            this.authClient.setSession(data);
        }
        return data.access_token;
    }
    /**
     * Initiates the face login process by redirecting the user to AuthVisage
     */
    async faceLogin() {
        try {
            const authUrl = await this._constructAuthUrl();
            window.location.assign(authUrl);
        }
        catch (error) {
            throw new Error(`Face login initiation failed: ${error.message}`);
        }
    }
}
//# sourceMappingURL=authVisageClient.js.map